Table of Contents
Advertisement
Quick Links
Advertisement
Table of Contents
Summary of Contents for Stonesoft StoneGate IPS-1205
- Page 1 IPS-1205 Appliance Installation Guide...
-
Page 2: Legal Information
European Council Regulation (EC) N:o 1334/2000 of 22 June 2000 setting up a Community regime for the control of exports of dual-use items and technology (as amended). Thus, the export of this Stonesoft software in any manner is restricted and requires a license by the relevant authorities. -
Page 3: Table Of Contents
(page 4) for information on other available documentation. The use of the appliance is subject to the acceptance of the End User License Agreement, which can be found at the Stonesoft website. C on t ent s Installation Procedure ....4 Product Documentation .... -
Page 4: Installation Procedure
Press F1 in any Management Client window to view the Online Help. All PDF guides are available: • On the Management Center CD-ROM (in the Documentation folder) • At the Stonesoft website at http://www.stonesoft.com/en/support/ technical_support_and_documents/manuals/ Install the free Adobe Reader program to view the PDF documents (available at www.adobe.com/reader/). -
Page 5: Safety Precautions
S a f e t y P r e c a u t i o n s The following safety information and procedures should be followed whenever working with electronic equipment. However, please be advised that StoneGate Appliances are not end-user serviceable, and you should never open the appliance covers for any reason. -
Page 6: Power Supplies
Power Supplies Appliances with DC Power Supply • The appliance must be used in a Restricted Access Location and the users must be well-trained to operate it. • The socket-outlet for pluggable equipment must be installed near the equipment and must be easily accessible. •... -
Page 7: Unpacking The Appliance
Inspect the box the appliance was shipped in and note if it was damaged in any way. If the appliance itself shows damage, file a damage claim with the carrier who delivered it. Confirm that the Stonesoft anti- tamper tape on the appliance is intact. - Page 8 Power, Warning, and Disk Activity Indicators Warning Power Disk Activity Table 1 Power, Warning, and Disk Activity Indicators Indicator Status Explanation Indicates power is being supplied to the system's power supply unit. This LED is Green illuminated when the system is operating Power normally.
-
Page 9: Back Panel
B a c k P a n e l Solid State Disk (SSD) Drive AC or DC power connector The indicators for the Solid State Disk (SSD) Drive are explained below. Power Disk Table 3 SSD Drive Indicators Indicator Status Explanation Power Blue... -
Page 10: Rack-Mounting
R a c k - M o u n t i n g This section provides information on installing the StoneGate appliance into a rack unit. You can install the appliance into a two-post or a four- post rack unit. Caution –... - Page 11 Appliance Precautions • Determine the placement of each component in the rack before starting the installation. • Install the heaviest components on the bottom of the rack first, and then work up. • The appliance must be connected to a grounded power outlet. •...
- Page 12 Installing the Appliance Into a Two-Post Rack To install the appliance into a two-post rack Locate the two rack-mounting brackets that are meant for the two- post rack installation. Attach a bracket to the appliance with three screws. Repeat step 2 on the other side of the appliance. Attach each bracket to the rack with two screws through the holes in the front of the bracket: one screw through the top hole and another through the bottom hole.
- Page 13 Installing the Appliance Into a Four-Post Rack If you are installing the appliance into a four-post rack, the rack- mounting method depends on the depth at which the brackets are attached to the rack: • If the depth is 40-70 cm (c. 16-28 inches), see To install the appliance with medium-length brackets below.
- Page 14 • These screws support the appliance when it is inserted into the rack. The number and position of the screws depends on the depth of the rack. Repeat step 5 on the other side of the appliance. Line up the screws that you have attached to the side of the appliance with the groove in the brackets attached to the rack.
- Page 15 Attach an inner rail to the appliance with three screws. The correct position of the screws depends on the set of brackets you use (see the illustrations below). Brackets with green and yellow locking tabs Brackets with blue locking tabs Repeat step 3 on the other side of the appliance.
-
Page 16: Connecting The Cables
C o n n e c t i n g t h e C a b l e s Two USB ports Serial console Six Ethernet ports port Connecting the Network Cables To connect the network cables Connect network cables to the Ethernet ports. •... - Page 17 The speed/duplex settings of inline interfaces must be matched on both links within each inline interface pair (identical settings on all four interfaces) instead of just matching settings at both ends of each cable (two + two interfaces). If one of the links has a lower maximum speed than the other link, the higher-speed link must be set to use the lower speed.
-
Page 18: Initial Configuration
I n i t i a l C o n f i g u r a t i o n To start using the appliance, you must activate the network interfaces and establish a secure connection to the Management Server as outlined in the sections below. - Page 19 • If the connection is successful, the appliance automatically reboots itself and the engine configuration is finished. If you configure the engine with a USB stick, you must set a password for the root account in the Management Client to enable command line access to the engine.
- Page 20 To select the configuration method Do one of the following: • To import a saved configuration, highlight Import using the arrow keys and press E NTER • To skip the import, highlight Next and press E NTER If you selected the Import option, select the configuration file. ...
- Page 21 To set the engine’s timezone Highlight the entry field for Local Timezone using the arrow keys and press E NTER Select the correct timezone in the dialog that opens. Note – The timezone setting affects only the way the time is displayed on the engine command line.
- Page 22 (Optional) Highlight Enable SSH Daemon and press the spacebar on your keyboard to select the option and allow remote access to engine command line using SSH. Note – It is not necessary to enable the SSH daemon now for ongoing management, as this option can also be set through the Management Client.
- Page 23 bypass interface pair(s). In the example below interface 1 is soft- bypassed with interface 2. Note – Setting the appliance to the initial bypass state can be useful during IPS appliance deployment when bypass network interface pairs on the appliance are in the Normal mode. Initial bypass allows traffic to flow through the IPS appliance until the initial configuration is ready and an IPS policy is installed on the appliance.
- Page 24 Contacting the Management Server The Prepare for Management Contact window opens. If the initial configuration was imported, most of this information is filled in. This task has three parts. First, you activate an initial configuration on the engine. The initial configuration contains the information that the engine needs to connect to the Management Server for the first time.
- Page 25 To fill in the Management Server information Highlight Contact and press spacebar to select. Fill in the Management Server IP address and the one-time password for this engine. • If you do not have a one-time password for this engine, see the IPS Installation Guide for instructions on how to save an initial configuration.
- Page 26 • If the engine is unable to contact the Management Server, make sure there are no networking problems and that the IP address defined in the IPS element on the Management Server is also correct. Note – When initial contact succeeds, the engine receives a certificate from the Management Center for identification.
-
Page 27: Maintenance Operations
M a i n t e n a n c e O p e r a t i o n s Connecting to the Engine Command Line You may need to connect to the engine command line, for example, to undo a software upgrade. - Page 28 Resetting the Appliance to Factory Settings Note – Perform a factory reset only if you have a specific need to do so. Consult Stonesoft Support before performing this operation if you are unsure of whether this operation is necessary or not.
-
Page 29: Disposal Instructions
Replacing the Solid State Disk Caution – We recommend using a grounding strap when handling a Solid State Disk (SSD). Uninstalled SSDs are sensitive to ESD damage. If necessary, you can replace the Solid State Disk in the appliance with another one of the same model. - Page 30 Itälahdenkatu 22 A 1050 Crown Pointe Parkway Fl-0021O Helsinki, Finland Suite 900 tel. +358 9 4767 11 Atlanta, GA 30338, USA fax. +358 9 4767 1349 tel. +1 866 869 4075 www.stonesoft.com fax. +1 770 668 1131 Copyright 2010 Stonesoft Corporation.
Need help?
Do you have a question about the StoneGate IPS-1205 and is the answer not in the manual?
Questions and answers